Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Q1CcXfaV5a0MWoeCAeuywzGoQm0.roa
File: Q1CcXfaV5a0MWoeCAeuywzGoQm0.roa (raw, json)
Hash identifier: +FrLrkwPDZoO8wtAM277Cug8ECDqdN91RQDcfvLRWUs=
Subject key identifier: 43:50:9C:5D:F6:95:E5:AD:0C:5A:87:82:01:EB:B2:C3:31:A8:42:6D
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 08820808
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Q1CcXfaV5a0MWoeCAeuywzGoQm0.roa
Signing time: Sat 01 Jan 2022 03:50:51 +0000
ROA not before: Sat 01 Jan 2022 03:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5578
IP address blocks: 84.245.64.0/18 maxlen: 18
84.245.97.0/24 maxlen: 24
84.245.94.0/24 maxlen: 24
185.130.220.0/22 maxlen: 22
193.110.186.0/23 maxlen: 23
62.168.64.0/18 maxlen: 18
94.124.144.0/21 maxlen: 21
84.245.126.0/24 maxlen: 24
195.168.0.0/16 maxlen: 16
85.248.234.0/24 maxlen: 24
85.248.235.0/24 maxlen: 24
217.67.16.0/20 maxlen: 20
212.26.160.0/19 maxlen: 19
213.215.64.0/18 maxlen: 18
213.215.72.0/22 maxlen: 22
212.26.176.0/20 maxlen: 20
194.1.230.0/24 maxlen: 24
194.1.231.0/24 maxlen: 24
194.1.228.0/24 maxlen: 24
194.1.229.0/24 maxlen: 24
194.1.227.0/24 maxlen: 24
82.119.224.0/20 maxlen: 20
80.250.240.0/20 maxlen: 20
194.1.224.0/24 maxlen: 24
194.1.225.0/24 maxlen: 24
194.1.226.0/24 maxlen: 24
62.197.192.0/18 maxlen: 18
195.12.128.0/19 maxlen: 19
195.46.64.0/19 maxlen: 19
62.197.222.0/24 maxlen: 24
85.248.0.0/16 maxlen: 16
217.75.64.0/19 maxlen: 19
217.75.82.0/23 maxlen: 23
81.88.128.0/20 maxlen: 20
193.58.192.0/22 maxlen: 22
193.58.196.0/23 maxlen: 23
185.220.120.0/22 maxlen: 22
62.65.160.0/19 maxlen: 19
194.1.172.0/22 maxlen: 22
195.72.0.0/19 maxlen: 19
62.152.224.0/19 maxlen: 19
195.98.0.0/19 maxlen: 19
83.168.128.0/18 maxlen: 18
212.81.0.0/19 maxlen: 19
217.172.144.0/20 maxlen: 20
217.118.96.0/20 maxlen: 20
2001:1ba0::/32 maxlen: 32
2a06:dbc0::/29 maxlen: 29
2a02:770::/32 maxlen: 32
2a00:1298::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142739464 (0x8820808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43509c5df695e5ad0c5a878201ebb2c331a8426d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:54:2f:01:44:79:e9:01:a2:28:b3:64:d3:
0b:78:12:93:d3:6b:29:37:cc:e9:21:8c:39:f9:64:
b8:6b:b8:c7:4a:54:1b:c5:a5:37:a3:44:15:17:e9:
7e:70:23:38:54:37:ea:d7:48:1e:89:eb:36:42:5c:
72:0e:22:2f:30:68:51:4f:f7:43:06:30:de:3e:ea:
bf:a0:23:8b:f1:ca:49:ef:cd:c6:ad:47:96:2e:6b:
ca:96:df:b0:8b:bc:43:e4:a1:8b:4c:59:08:f9:13:
7c:2b:1b:71:9b:d4:81:e9:34:01:33:6d:94:3b:e6:
27:52:39:5b:eb:bf:f1:b0:fb:bf:e6:ac:46:e6:e0:
1e:30:94:73:ae:2b:26:67:0f:52:a8:31:e5:02:37:
4f:36:d8:55:a5:46:e0:02:ef:12:9b:d3:f5:52:29:
5a:e2:c8:dc:db:70:34:21:6d:17:b2:84:b9:a8:66:
e8:47:16:16:b4:e7:73:d1:11:f5:dc:ab:fe:50:e9:
f5:cb:1a:46:a1:9e:b9:4a:3c:95:2c:3b:75:50:7e:
fd:90:96:48:b3:64:74:a5:d1:95:49:7e:0a:8f:5c:
7b:1a:c9:a9:80:cf:eb:6a:91:44:f6:0a:ef:62:0f:
93:e6:ac:6f:bc:fa:44:b5:fa:3c:1e:e7:e6:ba:7b:
e7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:50:9C:5D:F6:95:E5:AD:0C:5A:87:82:01:EB:B2:C3:31:A8:42:6D
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/Q1CcXfaV5a0MWoeCAeuywzGoQm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.65.160.0/19
62.152.224.0/19
62.168.64.0/18
62.197.192.0/18
80.250.240.0/20
81.88.128.0/20
82.119.224.0/20
83.168.128.0/18
84.245.64.0/18
85.248.0.0/16
94.124.144.0/21
185.130.220.0/22
185.220.120.0/22
193.58.192.0-193.58.197.255
193.110.186.0/23
194.1.172.0/22
194.1.224.0/21
195.12.128.0/19
195.46.64.0/19
195.72.0.0/19
195.98.0.0/19
195.168.0.0/16
212.26.160.0/19
212.81.0.0/19
213.215.64.0/18
217.67.16.0/20
217.75.64.0/19
217.118.96.0/20
217.172.144.0/20
IPv6:
2001:1ba0::/32
2a00:1298::/32
2a02:770::/32
2a06:dbc0::/29
Signature Algorithm: sha256WithRSAEncryption
9a:f7:54:26:2d:d5:ef:e5:8e:9c:24:11:82:c9:ce:1c:d2:34:
9b:d9:b8:8f:15:6e:e8:82:fe:8a:8e:92:5b:03:36:a3:23:72:
93:3e:cf:bf:b2:d2:23:81:b7:34:a2:78:e8:83:66:b3:3f:05:
30:c5:ea:e9:18:bf:bc:2e:45:a5:71:aa:bf:ce:ba:b7:94:58:
0f:b6:b5:28:c8:93:b5:0c:fd:f0:17:83:76:60:9e:b4:d5:09:
f8:9e:54:b6:f2:3a:89:b9:db:1b:1f:cc:20:47:1e:c4:ed:ac:
f7:9a:3a:2f:9a:7f:e8:e6:a4:67:5f:c2:b6:fb:43:70:57:dc:
da:57:6a:fd:30:f0:12:92:82:fd:f2:05:ad:be:66:b1:38:cd:
4a:6b:a5:c1:20:b3:e6:78:74:96:13:99:38:7f:c8:4b:99:29:
db:2d:cd:df:39:f1:2d:71:60:ad:82:6a:02:59:5d:92:9b:3c:
46:93:19:58:08:3a:d4:82:d3:ff:1f:eb:23:de:59:76:b5:b3:
9e:37:be:77:de:d1:78:af:28:b4:7f:ca:bc:05:89:49:0b:c5:
f3:66:af:c5:e9:7d:2a:e4:43:9b:c0:61:cb:72:81:2f:fd:d8:
37:f4:62:ef:e2:02:d0:98:c5:b3:34:6f:f8:f8:4d:93:08:05:
e1:61:21:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:04 2023 by rpki-client on console-ams.rpki-client.org